Home / Spyware Encyclopedia / IM.Pok << Back

Recommendation to Automatically remove IM.Pok


Our products can remove IM.Pok and thousands of other Virus and Spyware automatically and instantly.

IM.Pok Details


  • Category IM
  • Discovered 3/28/2011 3:08:31 PM
  • Modified 8/11/2023 3:36:01 PM
  • Threat Level Critical
  • Category Description
    A threat that is capable to cause Denial-Of-Service attacks against other instant messenger client systems.

The following Files were created:
VALUEFILESIZECOMPANYNAMEVERSIONSIGNATUREDate
thnall1t.exe 65536betterinternet, inc.1.0.0.8f9531200c381331a6fe0a59dbcfeb55e 
winlogon32.dll 4096  eeeb593526585fb618ddee7065310507 
alerter.exe 2122240  7c7d39696420a437ce32379770777e57 
mtwirl.dll 16384  7c73f0634929a9656c73f6ba1ba17d14 
CSRSSW.EXE 29696  6c8d950cf6ae8df5c0087d59b852afb0 
CTFMONSS.EXE 29696  6c8d950cf6ae8df5c0087d59b852afb0 
Trojan-Dropper.Win32.Small.qv.exe 29696  6c8d950cf6ae8df5c0087d59b852afb0 
Alerter.exe 55808  6c771a131d1c2f06b2439194e8ba2d49 
Trojan-Dropper.Win32.Small.qj.exe 55808  6c771a131d1c2f06b2439194e8ba2d49 
icvbr.dll 766  648c6ade8c1ec6dcf36fa504bbd7ebd1 

The following Registry Entries were created:
..\Software\Microsoft\Windows\CurrentVersion\Run\\"winlogon"\"%WIN.SYS32%\winlogon32.exe"
..\Software\Microsoft\Windows\CurrentVersion\URL\Prefixes\"www."\"http://"
..\Software\Microsoft\Windows\CurrentVersion\RunServices\\"desktop"\"%WIN.SYS32%\desktop.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"nsdriver"\"%WIN.SYS32%\nssys32.exe"
..\Software\Microsoft\Windows\CurrentVersion\Run\\"desktop"\"%WIN.SYS32%\desktop.exe"
..\Software\Classes\Clsid\{FF986C12-B5C9-439A-839B-D8591CBC24D6}\(Default)
..\Software\Classes\Clsid\{FF593D78-92C8-484E-BCDA-51B5FBB52E98}\(Default)
..\Software\Classes\Clsid\{E3D2751B-7B67-4C6A-8A46-614714042CDE}\(Default)
..\Software\Classes\Clsid\{DACF72F8-AD3D-4556-853A-90B69C531628}\(Default)
..\Software\Classes\Clsid\{D8825110-0A81-43B5-BC1A-A6FE5270F364}\(Default)

Notice
Please note that the following information is not controlled or endorsed by Max Secure Software. They are captured automatically by tools in our malware Research Lab as a result of executing Spyware Files or browsing Internet in virtual environment. Please contact us if you find any information inappropriate for removal. All the work contained in this report is copyrighted and should not be copied without permission from Max Secure Antivirus. We do not recommend browsing or removing these entries on your own manually. We do not take any warranty against the use or result of the use of this information.

Home / Malware Encyclopedia << Back

Max Total Security can detect & quarantine this Malware